Job Title – IAM Consultant / Architect
Experience: 8+ Years
Employment Type: Contract
What Role You Will Play in Team
The IAM Consultant/Architect will lead assessment, architecture, design and delivery assurance for enterprise IAM initiatives across hybrid identity (Enterprise and Customer), SSO/MFA & federation, and IGA. The role is accountable for producing secure‐by‐design architectures, roadmaps, estimates, and delivery plans, ensuring alignment to Zero Trust and compliance expectations typical in regulated / government adjacent environments.
Key Responsibilities
* Own IAM architecture end to end: discovery → target state → solution design → delivery governance and post deployment support.
* Define patterns for SSO, MFA, federation, lifecycle governance, IGA, and role/access models (RBAC/ABAC).
* Produce HLD/LLD, reference architectures, security patterns, and operational models with clear integration approaches (APIs/SCIM/SAML/OIDC).
* Microsoft Entra ID + AD: hybrid identity design, conditional access patterns, identity security controls, and AD integration considerations.
* Okta: tenant design (prod/dev), SSO/MFA rollout, federation integrations, and Joiner Mover Leaver workflows.
* SailPoint (IGA): identity lifecycle governance, provisioning, certifications/access reviews, role engineering and integrations with directories & enterprise apps.
* Embed Zero Trust thinking and security controls into design decisions, ensuring scalable and compliant identity foundations.
* Ensure IAM designs support auditability and uplift against common AU baselines (e.g., Essential Eight expectations around MFA / privilege restriction as part of broader controls).
* Produce security documentation that supports assurance processes (security requirements mapping, design risk assessments, controls traceability).
* Lead effort estimation and delivery planning: scope decomposition, sizing, milestones, dependency mapping, and rollout strategy.
* Develop practical delivery artifacts: work packages, backlog decomposition, RAID, migration waves, and cutover approach.
* Provide delivery oversight/assurance (quality gates, design authority reviews, and governance reporting).
* Engage senior stakeholders; translate business needs into IAM capabilities and ensure designs are understood and actionable.
* Work with application teams to onboard apps to SSO/federation and coordinate with vendors for complex product/integration issues.
Required Skills & Experience
* 8–10+ years in IAM with strong architecture/design ownership in enterprise environments. (Seen across AU IAM architect ads.)
* Proven delivery across hybrid identity and multi-app onboarding/integrations.
* Entra ID / Azure AD + Active Directory integrations; identity protocols and federation.
* Okta: SSO/MFA, lifecycle workflows, tenant governance.
* SailPoint IGA: provisioning, access certifications, role engineering, connectors/integrations.
* Strong grasp of identity standards: SAML, OAuth2, OIDC, SCIM/API integration patterns.
* Ability to produce high quality architecture documentation and communicate to exec + engineering audiences.
* Mentoring/leading engineers and providing architecture assurance.
* Experience in regulated sectors and working to security frameworks.
EEO Statement
ALOIS Australia is committed to fostering a diverse and inclusive workplace. We provide equal employment opportunities to all qualified applicants and do not discriminate on the basis of race, colour, religion, sex, age, national origin, disability, or any other characteristic protected under applicable laws. We value diversity and believe it strengthens our people, our culture, and the outcomes we deliver.
#J-18808-Ljbffr